How To Hack WPA/WPA2 Wifi By Hacking WPS Enabled Netork without Using Wordlist

What is WPS:

WPS Means Wifi Protected System, This Is a Different Type of security system which is enabled for some routers, it is the best method to hack wifi , But it does have Limitations, they are some routers with WPS enabled are secured by another security called “AP RATE LIMITING” if you see this just leave that network and go to another network.

Wpa And Wpa2 Networks can only be hacked using wordlist, Which uses Brute Force Attack in which probability of getting password is only 35%.

Today i will use the vulnerability in wps protected wifi to hack the password of wpa and wpa2-psk.In this tutorial i will use the kali linux tool reaver to hack the wps encryption without using dictionery.There is lots of method to hack the wps pin like pixie dust attack,default pin attack,hack wps using brute force attack etc...

Follow the below steps to hack wps protected wifi pin using kali linux.

How to hack Wifif Wps pin using reaver without Wordlist ? 


Step 1: Open Terminal and type “ifconfig”  (Optional)
Step 2:Here I will be selecting wlan0 as my interface  And the Next Command Is:
“airmon-ng start wlan0”

Step 3: Now you can see the available supplicants and the interfaces:


Step 4:  There are two options from here on, you can either kill the supplicants or move on with the other command.
Here i used “Kill” Command to kill the supplicants, you can follow any of these  methods.

Step 5: Now Type The Following Command
“airodump-ng wlan0mon“

Step 6: Here you can see all the available wifi networks.


Step 7:  Press “CTRL + C” to stop the search.


Step 8: Type “wash -i wlan0mon”

Wash is a tool used to search for all the wps enabled networks around you.


Step 9:  Here are the wps enabled networks available around me. Note:  Reaver can hack networks for which WPS is enabled and not locked, which can be seen below. In the WPS Locked Column. If it says â€œYes” – reaver can not hack such networks   “NO” — Reaver can hack those networks.


Step 10: Press “CTRL + C” to stop the search and select a network that you want to hack.

Step 11: Copy the “BSSID” of the network.


Step 12: Now time to hack the network using Reaver

reaver -i  wlan0mon -b bssid -vv 

Here bssid = the mac address or the bssid  that you copied earlier 
wlan0mon= Interface


Step 13: Now reaver starts its program and the Hacking Starts, you need to wait till it completes its hack(100%)


Reaver takes at least 6-18 hours to hack the network password, so please be patient and let it do its work. WPS pin contains 99999999 combinations, so it might take a while to crack it. After reaching 100% you can see the password of that network, as it takes a lot of time I am not able to show you the password of that network. But can guarantee you that this is the best and easiest way to hack wifi wpa and wpa2 passwordReaver can hack routers which are manufactured before 2012, later on manufactured discovered the flaw and modified in such a way that, when someone try to brute force wps pin, it automatically locks the wps system which is a disadvantage to reaver. 

This is the AP RATE LIMITING SECURITY SYSTEM (WPS lock ON) If you face this Error, most likely you should stop using this particular method and go for Evil Twin Method, which can Hack any router but with user Interference.  The Reason for getting this Error is WPS Protection is turned “ON” on the victim’s Router. We cannot hack WPS locked router’s using Reaver, you need to use evil twin attack to hack WPS locked networks, that’s the only method as of now.


If you get an error of AP Rate Limiting then try using the following commands, for very few router’s this command will work.
“reaver –i mon0 –b bssid –d 30 –vv –dh-small”


AP rate limiting cannot be cracked, nowadays almost all the routers come with WPS lock turned on so this might not work on all the routers.  

Comments

Post a Comment

Popular posts from this blog

HOW TO BUILD YOUR OWN BAD USB

Image
Make Your Own Bad USB Introduction Most common USB flash drives are exploitable due to the "BadUSB" vulnerability. This allows us hackers to reprogram the microcontroller in them to act as a human interface device (HID), e.g., a keyboard, and perform custom keystrokes on our target machine. This scenario is often called an "HID Payload Attack," since you have to hand over your script to the Bad USB for the execution (more on that later). Even though almost every USB flash drive is exploitable, the only released reprogramming method is for "Phison" microcontrollers. In this tutorial, we are going to determine the microcontroller of your USB flash drive, compile the source code published in GitHub for the tools we need, and move over to building a custom firmware with an embedded HID payload that will turn our harmless USB flash drive into a malicious keyboard designed to help us compromise our victim machine. The process is kind of like compiling a...
Read more

CLASSIFICATION OF COLLOIDS

Comparisons of multimolecular, macromolecular and associated colloids are as follows: MULTIMOLECULAR COLLOIDS MACROMOLECULAR COLLOIDS ACCOCIATED COLLOIDS They are formed by the aggregate of a large number of atoms or molecules which generally have diameters less than 1nm, e.g. Sols of gold, sulpher etc. They are molecules of large size e.g. polymers like rubber, nylon, starch. They are formed by of aggregation of a large number of ions in concentrated solution e.g. soap sol. Their molecular masses are not very high. They have high molecular masses. Their molecular masses are generally high. Their atoms or molecules are held together by weak vander Waal’s forces. Due to long chain, the vander Waal’s forces holding them are comparatively stronger. Higher is the concentration; greater are the vander Waal’s forces. They usually have lyophilic character. They usually have lyophobic character. Their molecules contain both lyophobic and lyophilic ch...
Read more
How To Prevent  MITM  Attacks? MITM attacks can really overwhelm you just by hearing its basic concept, but that doesn’t mean they are impossible to avoid. PKI technology can help protect you from some of the types of attacks we discussed above. S/MIME Secure/Multipurpose Internet Mail Extensions, or S/MIME for short, encrypts your emails  at rest or in transit , ensuring only intended recipients can read them and leaving no spaces for hackers to slip their way in and alter your messages. Additionally, S/MIME  lets you digitally sign your email  with a Digital Certificate unique to every person. This ties your virtual identity to your email and gives your recipients the assurance that the email they received actually came from you (as opposed to a hacker who access your mail server). You can see how this could have been helpful in the Europol example discussed earlier. While the hackers had access to the companies’ mail servers, in order to d...
Read more